Netkamp Emlak Scripti - Multiple Input Validation Vulnerabilities



EKU-ID: 35655 CVE: CVE-2007-5181;OSVDB-37405 OSVDB-ID:
Author: GeFORC3 Published: 2007-10-01 Verified: Verified
Download:

Rating

☆☆☆☆☆
Home 


source: https://www.securityfocus.com/bid/25875/info

Netkamp Emlak Scripti is prone to multiple input-validation vulnerabilities, including multiple HTML-injection issues and an SQL-injection issue, because the application fails to sanitize user-supplied input.

A successful exploit may allow an attacker to steal cookie-based authentication credentials, execute malicious script code, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.

http://www.example.com.com/script_path/detay.asp?ilan_id=[SQL]